First published: Wed Aug 11 2021(Updated: )
NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer underflow due to lack of input validation may lead to complete denial of service, partial integrity, and serious confidentiality loss for all processes in the system.
Credit: psirt@nvidia.com
Affected Software | Affected Version | How to fix |
---|---|---|
NVIDIA Jetson Linux | >=32.1<32.6.1 | |
NVIDIA Jetson AGX Xavier | ||
Nvidia Jetson Nano | ||
Nvidia Jetson Nano 2gb | ||
NVIDIA Jetson TX1 | ||
NVIDIA Jetson TX2 | ||
Nvidia Jetson Tx2 Nx | ||
Nvidia Jetson Xavier Nx | ||
Nvidia Shield Experience | <9.0 | |
Nvidia Shield Tv |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this NVIDIA Linux kernel vulnerability is CVE-2021-1108.
The severity level of CVE-2021-1108 is high (7.3).
NVIDIA Jetson Linux versions from 32.1 to 32.6.1 are affected by CVE-2021-1108.
CVE-2021-1108 may lead to complete denial of service, partial integrity, and serious confidentiality loss for all processes in the system.
No, NVIDIA Jetson AGX Xavier and NVIDIA Jetson Nano are not vulnerable to CVE-2021-1108.